From: Tim Rowe <spamtrap@tgrowe.plus.net>
Subject: Re: SPARK Examiner -- visibility of Ada.Strings.Unbounded (and probably lots of other packages)
Date: Thu, 26 Mar 2009 16:15:29 +0000
Date: 2009-03-26T16:15:29+00:00 [thread overview]
Message-ID: <OPWdnbuqg7uyN1bUnZ2dnUVZ8qOWnZ2d@posted.plusnet> (raw)
In-Reply-To: <8c753bd7-3df6-418a-8cd7-342af6eadeff@g38g2000yqd.googlegroups.com>
Ludovic Brenta wrote:
> I don't think Ada.Strings.Unbounded is part of SPARK. SPARK is a
> *subset* of Ada that removes everything not statically provable.
It isn't. But John Barnes, in High Integrity Software: The SPARK
Approach to Safety and Security, says "where absolutely essential [...]
any feature of full Ada [...] can be used in parts of a program covered
by the special hide directive which tells the examiner that part of a
program is not to be examined". I just can't work out how to hide the
relevant bit -- I'm only allowed the hide after immediately after
private, after is and after the begin of a body -- that means that I
can't get the with inside the hidden part.
next prev parent reply other threads:[~2009-03-26 16:15 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-03-26 14:50 SPARK Examiner -- visibility of Ada.Strings.Unbounded (and probably lots of other packages) Tim Rowe
2009-03-26 15:13 ` Ludovic Brenta
2009-03-26 15:18 ` Georg Bauhaus
2009-03-26 15:35 ` roderick.chapman
2009-03-26 17:06 ` Tim Rowe
2009-03-26 19:13 ` Tim Rowe
2009-03-27 8:27 ` JP Thornley
2009-03-27 8:34 ` roderick.chapman
2009-03-27 16:03 ` Tim Rowe
2009-03-26 15:40 ` roderick.chapman
2009-03-26 16:15 ` Tim Rowe [this message]
2009-03-26 16:26 ` roderick.chapman
2009-03-26 16:30 ` JP Thornley
2009-03-26 16:51 ` roderick.chapman
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox